2 matches found
CVE-2021-21474
SAP HANA Database, versions - 1.0, 2.0, accepts SAML tokens with MD5 digest, an attacker who manages to obtain an MD5-digest signed SAML Assertion issued for an SAP HANA instance might be able to tamper with it and alter it in a way that the digest continues to be the same and without invalidatin...
CVE-2021-21474
CVE-2021-21474 affects SAP HANA Database versions 1.0 and 2.0. The issue arises from accepting SAML tokens with MD5 digests, enabling an attacker who possesses an MD5-digest signed SAML Assertion for an SAP HANA instance to tamper with the assertion without invalidating the signature, potentially...